Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/3f7ab8-6b39-4362-a27e-77660371a1ec/1/7oZGr-88It-n3-0AaJVqRTp9EHM.roa
File: 7oZGr-88It-n3-0AaJVqRTp9EHM.roa (raw, json)
Hash identifier: CxWP5xbSS2lRVs0sYe/p6RrYzIbWHQ+xOhQqU6KTUXk=
Subject key identifier: EE:86:46:AF:EF:3C:22:DF:A7:DF:ED:00:68:95:6A:45:3A:7D:10:73
Certificate issuer: /CN=705a3bb117538db6db9c5cfd5a794bf3df697c27
Certificate serial: 01856BB7DDBB0FA3DD98619EA53C9D6C5C17
Authority key identifier: 70:5A:3B:B1:17:53:8D:B6:DB:9C:5C:FD:5A:79:4B:F3:DF:69:7C:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cFo7sRdTjbbbnFz9WnlL899pfCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/3f7ab8-6b39-4362-a27e-77660371a1ec/1/7oZGr-88It-n3-0AaJVqRTp9EHM.roa
Signing time: Sun 01 Jan 2023 05:04:50 +0000
ROA not before: Sun 01 Jan 2023 05:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42207
IP address blocks: 185.206.186.0/23 maxlen: 23
185.206.184.0/23 maxlen: 23
185.206.184.0/22 maxlen: 22
2a0b:15c0::/30 maxlen: 30
2a0b:15c4::/30 maxlen: 30
2a0b:15c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:b7:dd:bb:0f:a3:dd:98:61:9e:a5:3c:9d:6c:5c:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=705a3bb117538db6db9c5cfd5a794bf3df697c27
Validity
Not Before: Jan 1 05:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee8646afef3c22dfa7dfed0068956a453a7d1073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ab:9f:53:22:da:45:ff:f2:3d:90:c9:6c:2a:
dd:70:22:bd:44:b1:88:44:ac:22:29:67:c5:b2:e1:
42:9a:f9:da:fd:e1:cf:fb:7c:05:5c:3f:67:94:55:
e6:46:d7:b7:23:28:a3:53:62:77:2e:b5:03:27:c6:
e0:7d:98:29:07:f8:74:de:c7:82:6b:12:8c:af:52:
50:38:92:55:d3:e4:72:4e:23:cb:e0:f7:71:08:2c:
15:8e:9e:6d:3d:d1:d9:73:68:89:f1:aa:a3:83:0a:
95:a3:b9:5b:b4:d5:2a:e2:b6:2c:9d:65:e4:b1:77:
45:b3:89:53:bc:3c:80:98:9e:b4:ab:12:ea:38:ea:
a6:b4:44:37:56:5c:77:74:cb:af:fa:53:d1:72:62:
9c:bb:60:ad:c0:1f:25:86:60:e4:8b:84:53:d1:1f:
b2:76:60:8d:ea:42:8b:04:ae:23:be:ab:f5:e2:f7:
33:b6:1e:a6:1b:dc:f5:8d:26:6f:91:5d:5f:f0:02:
b4:63:d5:40:3d:6b:44:ce:bc:56:dc:c3:a9:ef:21:
38:71:5d:02:33:18:f6:88:e9:57:2e:a6:bf:c5:26:
3b:1b:ad:10:1f:ea:cf:6b:ee:c1:fd:ad:1c:8a:99:
e6:a9:55:ea:27:2d:48:fc:f1:9f:69:8b:31:79:15:
c9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:86:46:AF:EF:3C:22:DF:A7:DF:ED:00:68:95:6A:45:3A:7D:10:73
X509v3 Authority Key Identifier:
keyid:70:5A:3B:B1:17:53:8D:B6:DB:9C:5C:FD:5A:79:4B:F3:DF:69:7C:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cFo7sRdTjbbbnFz9WnlL899pfCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3f7ab8-6b39-4362-a27e-77660371a1ec/1/7oZGr-88It-n3-0AaJVqRTp9EHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3f7ab8-6b39-4362-a27e-77660371a1ec/1/cFo7sRdTjbbbnFz9WnlL899pfCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.184.0/22
IPv6:
2a0b:15c0::/29
Signature Algorithm: sha256WithRSAEncryption
36:9b:aa:56:a4:a9:fb:42:fc:78:61:6d:4a:ca:af:53:94:85:
e7:ce:9a:64:3d:5d:55:1e:16:db:ee:06:2f:89:60:0d:a7:44:
83:1a:50:57:64:0d:5e:5d:ef:7a:6c:df:a3:f6:45:35:aa:82:
5c:b0:26:fe:45:d8:bf:76:d1:7f:0a:8a:32:3e:e0:45:52:bd:
c6:aa:d2:85:92:b6:29:9a:3e:70:09:ee:49:82:2e:39:dc:34:
d0:44:ee:5d:0c:95:81:12:c4:bf:e4:43:89:12:56:5e:6f:7b:
c5:dd:24:f4:43:c6:db:e4:2f:01:28:8e:82:b0:8b:0b:7b:94:
b2:62:d9:9f:b7:6d:c4:df:f4:a4:65:63:28:95:df:83:04:3f:
53:8e:91:02:5b:44:35:5a:7d:fb:26:12:4c:d5:51:0b:1c:1b:
5d:a2:22:36:29:60:72:23:62:8e:7f:11:93:4d:97:45:b6:eb:
7e:30:52:fd:c4:4b:2c:4f:97:53:e9:ba:59:58:bc:a9:a7:2b:
b1:be:71:c2:5b:7e:aa:6a:6e:6b:44:90:d4:42:e6:ea:bd:b8:
09:9f:77:6e:11:2e:fd:b3:d4:1d:e4:d0:63:28:2d:1f:9a:2d:
79:3e:75:da:99:d0:c9:62:e6:67:48:2b:e4:48:69:09:56:13:
95:3e:83:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:42 2024 by rpki-client on console-ams.rpki-client.org